Operational Risk Director

Our mission is to SAVE AND IMPROVE LIVES BY EMPOWERING HEALTHCARE CONSUMERS. Come be part of remarkable.

How you can make a difference 

HealthEquity’s Enterprise Risk Management (ERM) Team leads delivery of the firm’s ERM Program, which works with teams firmwide, to manage (i.e., identify, assess, mitigate, and monitor) significant risks facing HealthEquity.  ERM sits alongside Corporate Compliance. Tthe two comprise HealthEquity’s second line.  The ERM Team is looking to hire a Operational Risk Director to continue the program’s maturation, reporting to the Head of ERM.  Bringing significant operational risk management expertise and experience, with significant emphasis on managing security/privacy, technology, and financial crime risk, the role is central to the success of the program. The Operational Risk Director will work very closely with the Head of ERM leading the continued build-out and implementation of the ERM Program (through leadership of assessments and refinement of the enterprise risk register, risk appetite, key risk indicators/dashboard, etc. all with a focus on operational risks).  The Operational Risk Director will liaise with senior and executive leadership firmwide, operational risk owners, and external consultants (as needed), driving program delivery.  This role will require deep operational risk subject-matter expertise/experience; strong critical thinking and communication skills; and the ability to learn and absorb new content and navigate ambiguity as the ERM Team matures the overall ERM Program.

What you’ll be doing 

• Leads, and is accountable for, the Second Line’s (business leadership) approach to operational risk with focus on technology and security risk and leading corporate wide strategy and implementation.
• Provide and apply field expertise to partner and  challenge the organization’s IT, Security, Operations, and Product & Teachnology teams when necessary, guided by a deep knowledge  of the infrastructure, tools, and operating environments they work within.
• Apply industry best practice knowledge in the development and implementation of programs to build functional maturation, with a focus on operational risk (e.g., policies/standards/procedures; processes for risk identification, assessment, mitigation, monitoring; risk register; risk appetite; risk acceptances; key risk indicators; reporting to management/ board)
• Lead the build-out of in-house risk management analytics and reporting system
• Accountable for operational risk dashboards to support dynamic risk monitoring and reporting
• Lead data-driven risk assessments on significant, complex risks (including modeling of risks to understand all parameters, worst case outcomes, etc.) and contribute to risk mitigation planning
• Engage leadership thoughout the organization to enhance internal processes and champion continuous improvement in risk management
• Align the ERM Program with annual strategic planning, budgeting, enterprise project prioritization, decision support, 10-K risk identification, etc.
• Build and maintain a strong collaborative relationship between ERM, Complaiance and Internal Audit team
• Leads, and is accountable for, the Second Line’s (business leadership) approach to operational risk with focus on technology and security risk and leading corporate wide strategy and implementation.
• Provide and apply field expertise to partner and  challenge the organization’s IT, Security, Operations, and Product & Teachnology teams when necessary, guided by a deep knowledge  of the infrastructure, tools, and operating environments they work within.
• Apply industry best practice knowledge in the development and implementation of programs to build functional maturation, with a focus on operational risk (e.g., policies/standards/procedures; processes for risk identification, assessment, mitigation, monitoring; risk register; risk appetite; risk acceptances; key risk indicators; reporting to management/ board)
• Lead the build-out of in-house risk management analytics and reporting system
• Accountable for operational risk dashboards to support dynamic risk monitoring and reporting
• Lead data-driven risk assessments on significant, complex risks (including modeling of risks to understand all parameters, worst case outcomes, etc.) and contribute to risk mitigation planning
• Engage leadership thoughout the organization to enhance internal processes and champion continuous improvement in risk management
• Align the ERM Program with annual strategic planning, budgeting, enterprise project prioritization, decision support, 10-K risk identification, etc.
• Build and maintain a strong collaborative relationship between ERM, Complaiance and Internal Audit team

What you will need to be successful

• 12+ years of experience in risk management, including deep demonstrable expertise with operational risk management (IT/security/privacy/financial crime/etc.)
• Experience using SQL and Python/R for data analysis desirable
• Experience working in a regulated financial services entity (e.g., bank, brokerage firm, investment advisor [institutional] or consulting firm focused on financial services, not least in operational risk) desired
• Public company experience desired
• Deep, demonstrable knowledge of and experience in operational risk management—not least security/privacy, technology, and financial crime risks
• Independence and the ability to challenge the First Line and escalate issues as appropriate
• Ability to prioritize and handle multiple competing deadlines
• Ability to work with, communicate, and lead individuals at all levels of the firm, from junior staff to executive/senior leadership and the board
• Strong attention to detail
• Excellent writing, speaking, and analytical skills, with an ability to articulate complex problems and solutions through clear and concise messaging
• Intellectual curiosity and an ability to think both strategically and tactically
• Advanced degree (e.g., PhD, MBA, JD) in a relevant field

#LI-Remote

This is a remote position.

The compensation range describes the typical minimum or maximum base pay range for this position. The actual compensation offer is determined based on job-related knowledge, education, skills, experience, and work location. This position will be eligible for performance-based incentives as part of the total compensation package, in addition to a full range of benefits including:

• Medical, dental, and vision
• HSA contribution and match
• Dependent care FSA match
• Uncapped paid time off
• Adventure accounts
• Paid parental leave
• 401(k) match
• Personal and healthcare financial literacy programs
• Ongoing education & tuition assistance
• Gym and fitness reimbursement
• Wellness program incentives

Why work for HealthEquity 

HealthEquity has a vision that by 2030 we will make HSAs as wide-spread and popular as retirement accounts. We are passionate about providing a solution that allows American families to connect health and wealth. Join us and discover a work experience where the person is valued more than the position. Click here to learn more. 

Come be your authentic self

HealthEquity, Inc. is an equal opportunity employer that is committed to inclusion and diversity. We take affirmative action to ensure equal opportunity for all applicants without regard to race, age, color, religion, sex, sexual orientation, gender identity, national origin, status as a qualified individual with a disability, veteran status, or other legally protected characteristics. HealthEquity is a drug-free workplace. For more information about our EEO policy, or about HealthEquity’s applicant disability accommodation, drug-free-workplace, background check, and E-Verify policies, please visit our Careers page.

HealthEquity is committed to your privacy as an applicant for employment.  For information on our privacy policies and practices, please visit HealthEquity Privacy.